Where are public/private keys stored?

  • Thread starter Thread starter Sheldon
  • Start date Start date
S

Sheldon

Hello -

Where are public and private keys stored in a visual basic windows
application project?

What can I click on to see them?

How can I create a certificate that will not expire until 2015?
 
Likely as a resource (and by design the private key is not AFAIK as it
should be keypt secret).

AFAIK you can't do that. Hower if you use a timestamp server, then the
certificate shouldn't expire. The idea is that as a server timestamp has
been used you can guarantee that the application is signed with a
certificate that was still valid at the time of the signing.
 
Thanks for your response, Patrice.

How do you use a timestamp server for the certificate?

--
Sheldon


Patrice said:
Likely as a resource (and by design the private key is not AFAIK as it
should be keypt secret).

AFAIK you can't do that. Hower if you use a timestamp server, then the
certificate shouldn't expire. The idea is that as a server timestamp has
been used you can guarantee that the application is signed with a
certificate that was still valid at the time of the signing.
 
How do you use a timestamp server for the certificate?

VS 2008 ? You have this in the signing tab in the project properties.

"Timestamp Server URL
The Timestamp Server URL feature allows you to supply a service that will
time stamp your manifest during the publishing process. When a published
application's certificate expires, the time stamp service can be called upon
by the client to verify whether the application was signed while the
certificate was still valid and is needed to utilize the TAD features.
Verisign, Inc. is an example of a CA that provides this kind of service."

Taken from http://msdn.microsoft.com/en-us/library/aa730868(VS.80).aspx
 
Thanks!
--
Sheldon


Patrice said:
VS 2008 ? You have this in the signing tab in the project properties.

"Timestamp Server URL
The Timestamp Server URL feature allows you to supply a service that will
time stamp your manifest during the publishing process. When a published
application's certificate expires, the time stamp service can be called upon
by the client to verify whether the application was signed while the
certificate was still valid and is needed to utilize the TAD features.
Verisign, Inc. is an example of a CA that provides this kind of service."

Taken from http://msdn.microsoft.com/en-us/library/aa730868(VS.80).aspx
 
Back
Top